| blob | 8ef421722c9c96eaba9af7cc2c39ec8637a46c9b |
1 /* Tree based points-to analysis
2 Copyright (C) 2005, 2006 Free Software Foundation, Inc.
3 Contributed by Daniel Berlin <dberlin@dberlin.org>
5 This file is part of GCC.
7 GCC is free software; you can redistribute it and/or modify
8 under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 GCC is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with GCC; if not, write to the Free Software
19 Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
20 */
57 /* The idea behind this analyzer is to generate set constraints from the
58 program, then solve the resulting constraints in order to generate the
59 points-to sets.
61 Set constraints are a way of modeling program analysis problems that
62 involve sets. They consist of an inclusion constraint language,
63 describing the variables (each variable is a set) and operations that
64 are involved on the variables, and a set of rules that derive facts
65 from these operations. To solve a system of set constraints, you derive
66 all possible facts under the rules, which gives you the correct sets
67 as a consequence.
69 See "Efficient Field-sensitive pointer analysis for C" by "David
70 J. Pearce and Paul H. J. Kelly and Chris Hankin, at
71 http://citeseer.ist.psu.edu/pearce04efficient.html
73 Also see "Ultra-fast Aliasing Analysis using CLA: A Million Lines
74 of C Code in a Second" by ""Nevin Heintze and Olivier Tardieu" at
75 http://citeseer.ist.psu.edu/heintze01ultrafast.html
77 There are three types of real constraint expressions, DEREF,
78 ADDRESSOF, and SCALAR. There is one type of fake constraint
79 expression, called INCLUDES. Each constraint expression consists
80 of a constraint type, a variable, and an offset.
82 SCALAR is a constraint expression type used to represent x, whether
83 it appears on the LHS or the RHS of a statement.
84 DEREF is a constraint expression type used to represent *x, whether
85 it appears on the LHS or the RHS of a statement.
86 ADDRESSOF is a constraint expression used to represent &x, whether
87 it appears on the LHS or the RHS of a statement.
88 INCLUDES is a constraint expression type used to represent just a
89 setting of a bit in the points-to set without having the address
90 taken. It exists mainly for abstraction sake, and is used for
91 initializing fake variables like the ESCAPED_VARS set.
93 Each pointer variable in the program is assigned an integer id, and
94 each field of a structure variable is assigned an integer id as well.
96 Structure variables are linked to their list of fields through a "next
97 field" in each variable that points to the next field in offset
98 order.
99 Each variable for a structure field has
101 1. "size", that tells the size in bits of that field.
102 2. "fullsize, that tells the size in bits of the entire structure.
103 3. "offset", that tells the offset in bits from the beginning of the
104 structure to this field.
106 Thus,
107 struct f
108 {
109 int a;
110 int b;
111 } foo;
112 int *bar;
114 looks like
116 foo.a -> id 1, size 32, offset 0, fullsize 64, next foo.b
117 foo.b -> id 2, size 32, offset 32, fullsize 64, next NULL
118 bar -> id 3, size 32, offset 0, fullsize 32, next NULL
121 In order to solve the system of set constraints, the following is
122 done:
124 1. Each constraint variable x has a solution set associated with it,
125 Sol(x).
127 2. Constraints are separated into direct, copy, and complex.
128 Direct constraints are ADDRESSOF constraints that require no extra
129 processing, such as P = &Q
130 Copy constraints are those of the form P = Q.
131 Complex constraints are all the constraints involving dereferences
132 and offsets (including offsetted copies).
134 3. All direct constraints of the form P = &Q are processed, such
135 that Q is added to Sol(P)
137 4. All complex constraints for a given constraint variable are stored in a
138 linked list attached to that variable's node.
140 5. A directed graph is built out of the copy constraints. Each
141 constraint variable is a node in the graph, and an edge from
142 Q to P is added for each copy constraint of the form P = Q
144 6. The graph is then walked, and solution sets are
145 propagated along the copy edges, such that an edge from Q to P
146 causes Sol(P) <- Sol(P) union Sol(Q).
148 7. As we visit each node, all complex constraints associated with
149 that node are processed by adding appropriate copy edges to the graph, or the
150 appropriate variables to the solution set.
152 8. The process of walking the graph is iterated until no solution
153 sets change.
155 Prior to walking the graph in steps 6 and 7, We perform static
156 cycle elimination on the constraint graph, as well
157 as off-line variable substitution.
159 TODO: Adding offsets to pointer-to-structures can be handled (IE not punted
160 on and turned into anything), but isn't. You can just see what offset
161 inside the pointed-to struct it's going to access.
163 TODO: Constant bounded arrays can be handled as if they were structs of the
164 same number of elements.
166 TODO: Modeling heap and incoming pointers becomes much better if we
167 add fields to them as we discover them, which we could do.
169 TODO: We could handle unions, but to be honest, it's probably not
170 worth the pain or slowdown. */
173 htab_t heapvar_for_stmt;
187 #define EXECUTE_IF_IN_NONNULL_BITMAP(a, b, c, d) \
188 if (a) \
189 EXECUTE_IF_SET_IN_BITMAP (a, b, c, d)
191 static struct constraint_stats
192 {
201 struct variable_info
202 {
203 /* ID of this variable */
206 /* Name of this variable */
209 /* Tree that this variable is associated with. */
210 tree decl;
212 /* Offset of this variable, in bits, from the base variable */
215 /* Size of the variable, in bits. */
218 /* Full size of the base variable, in bits. */
221 /* A link to the variable for the next field in this structure. */
224 /* Node in the graph that represents the constraints and points-to
225 solution for the variable. */
228 /* True if the address of this variable is taken. Needed for
229 variable substitution. */
232 /* True if this variable is the target of a dereference. Needed for
233 variable substitution. */
236 /* True if the variable is directly the target of a dereference.
237 This is used to track which variables are *actually* dereferenced
238 so we can prune their points to listed. This is equivalent to the
239 indirect_target flag when no merging of variables happens. */
242 /* True if this is a variable created by the constraint analysis, such as
243 heap variables and constraints we had to break up. */
246 /* True if this is a special variable whose solution set should not be
247 changed. */
250 /* True for variables whose size is not known or variable. */
253 /* True for variables that have unions somewhere in them. */
256 /* True if this is a heap variable. */
259 /* Points-to set for this variable. */
260 bitmap solution;
262 /* Finished points-to set for this variable (IE what is returned
263 from find_what_p_points_to. */
264 bitmap finished_solution;
266 /* Variable ids represented by this node. */
267 bitmap variables;
269 /* Vector of complex constraints for this node. Complex
270 constraints are those involving dereferences. */
273 /* Variable id this was collapsed to due to type unsafety.
274 This should be unused completely after build_constraint_graph, or
275 something is broken. */
277 };
282 /* Pool of variable info structures. */
289 /* Table of variable info structures for constraint variables.
290 Indexed directly by variable info id. */
293 /* Return the varmap element N */
297 {
299 }
301 /* Return the varmap element N, following the collapsed_to link. */
305 {
311 }
313 /* Variable that represents the unknown pointer. */
318 /* Variable that represents the NULL pointer. */
323 /* Variable that represents read only memory. */
328 /* Variable that represents integers. This is used for when people do things
329 like &0->a.b. */
334 /* Lookup a heap var for FROM, and return it if we find one. */
336 static tree
338 {
346 }
348 /* Insert a mapping FROM->TO in the heap var for statement
349 hashtable. */
351 static void
353 {
363 }
365 /* Return a new variable info structure consisting for a variable
366 named NAME, and using constraint graph node NODE. */
368 static varinfo_t
370 {
392 }
396 /* An expression that appears in a constraint. */
398 struct constraint_expr
399 {
400 /* Constraint type. */
401 constraint_expr_type type;
403 /* Variable we are referring to in the constraint. */
406 /* Offset, in bits, of this constraint from the beginning of
407 variables it ends up referring to.
409 IOW, in a deref constraint, we would deref, get the result set,
410 then add OFFSET to each member. */
412 };
420 /* Our set constraints are made up of two constraint expressions, one
421 LHS, and one RHS.
423 As described in the introduction, our set constraints each represent an
424 operation between set valued variables.
425 */
426 struct constraint
427 {
430 };
432 /* List of constraints that we use to build the constraint graph from. */
438 /* The constraint graph is represented as an array of bitmaps
439 containing successor nodes. */
441 struct constraint_graph
442 {
445 };
451 /* Create a new constraint consisting of LHS and RHS expressions. */
453 static constraint_t
456 {
461 }
463 /* Print out constraint C to FILE. */
465 void
467 {
488 }
490 /* Print out constraint C to stderr. */
492 void
494 {
496 }
498 /* Print out all constraints to FILE */
500 void
502 {
504 constraint_t c;
507 }
509 /* Print out all constraints to stderr. */
511 void
513 {
515 }
517 /* SOLVER FUNCTIONS
519 The solver is a simple worklist solver, that works on the following
520 algorithm:
522 sbitmap changed_nodes = all ones;
523 changed_count = number of nodes;
524 For each node that was already collapsed:
525 changed_count--;
527 while (changed_count > 0)
528 {
529 compute topological ordering for constraint graph
531 find and collapse cycles in the constraint graph (updating
532 changed if necessary)
534 for each node (n) in the graph in topological order:
535 changed_count--;
537 Process each complex constraint associated with the node,
538 updating changed if necessary.
540 For each outgoing edge from n, propagate the solution from n to
541 the destination of the edge, updating changed as necessary.
543 } */
545 /* Return true if two constraint expressions A and B are equal. */
547 static bool
549 {
551 }
553 /* Return true if constraint expression A is less than constraint expression
554 B. This is just arbitrary, but consistent, in order to give them an
555 ordering. */
557 static bool
559 {
561 {
564 else
566 }
567 else
569 }
571 /* Return true if constraint A is less than constraint B. This is just
572 arbitrary, but consistent, in order to give them an ordering. */
574 static bool
576 {
581 else
583 }
585 /* Return true if two constraints A and B are equal. */
587 static bool
589 {
592 }
595 /* Find a constraint LOOKFOR in the sorted constraint vector VEC */
597 static constraint_t
600 {
602 constraint_t found;
614 }
616 /* Union two constraint vectors, TO and FROM. Put the result in TO. */
618 static void
621 {
623 constraint_t c;
626 {
628 {
630 constraint_less);
632 }
633 }
634 }
636 /* Take a solution set SET, add OFFSET to each member of the set, and
637 overwrite SET with the result when done. */
639 static void
641 {
644 bitmap_iterator bi;
647 {
648 /* If this is a properly sized variable, only add offset if it's
649 less than end. Otherwise, it is globbed to a single
650 variable. */
653 {
659 }
663 {
665 }
666 }
670 }
672 /* Union solution sets TO and FROM, and add INC to each member of FROM in the
673 process. */
675 static bool
677 {
680 else
681 {
682 bitmap tmp;
691 }
692 }
694 /* Insert constraint C into the list of complex constraints for VAR. */
696 static void
698 {
701 constraint_less);
703 }
706 /* Condense two variable nodes into a single variable node, by moving
707 all associated info from SRC to TO. */
709 static void
711 {
715 constraint_t c;
716 bitmap_iterator bi;
718 /* the src node, and all its variables, are now the to node. */
723 /* Merge the src node variables and the to node variables. */
728 /* Move all complex constraints from src node into to node */
730 {
731 /* In complex constraints for node src, we may have either
732 a = *src, and *src = a. */
736 else
738 }
742 }
745 /* Remove edges involving NODE from GRAPH. */
747 static void
749 {
750 bitmap_iterator bi;
753 /* Walk the successors, erase the associated preds. */
760 /* Walk the preds, erase the associated succs. */
768 {
771 }
774 {
777 }
778 }
782 /* Merge GRAPH nodes FROM and TO into node TO. */
784 static void
787 {
789 bitmap_iterator bi;
791 /* Merge all the predecessor edges. */
793 {
798 {
800 {
803 }
804 }
807 }
809 /* Merge all the successor edges. */
811 {
815 {
818 }
821 }
824 }
826 /* Add a graph edge to GRAPH, going from TO to FROM if
827 it doesn't exist in the graph already.
828 Return false if the edge already existed, true otherwise. */
830 static bool
833 {
835 {
837 }
838 else
839 {
847 {
853 }
855 }
856 }
859 /* Return true if {DEST.SRC} is an existing graph edge in GRAPH. */
861 static bool
864 {
867 }
869 /* Build the constraint graph. */
871 static void
873 {
875 constraint_t c;
884 {
891 {
892 /* *x = y or *x = &y (complex) */
895 }
897 {
898 /* !special var= *y */
901 }
903 {
904 /* x = &y */
906 }
908 {
909 /* Ignore self edges, as they can't possibly contribute
910 anything */
912 {
915 else
917 }
919 }
920 }
921 }
924 /* Changed variables on the last iteration. */
932 /* Strongly Connected Component visitation info. */
934 struct scc_info
935 {
936 sbitmap visited;
937 sbitmap in_component;
942 };
945 /* Recursive routine to find strongly connected components in GRAPH.
946 SI is the SCC info to store the information in, and N is the id of current
947 graph node we are processing.
949 This is Tarjan's strongly connected component finding algorithm, as
950 modified by Nuutila to keep only non-root nodes on the stack.
951 The algorithm can be found in "On finding the strongly connected
952 connected components in a directed graph" by Esko Nuutila and Eljas
953 Soisalon-Soininen, in Information Processing Letters volume 49,
954 number 1, pages 9-14. */
956 static void
958 {
960 bitmap_iterator bi;
967 /* Visit all the successors. */
969 {
974 {
979 }
980 }
982 /* See if any components have been identified. */
984 {
989 {
993 /* Mark this node for collapsing. */
995 }
996 }
997 else
999 }
1002 /* Collapse two variables into one variable, merging solutions if
1003 requested. */
1005 static void
1008 {
1014 {
1019 }
1022 {
1024 {
1027 }
1028 }
1029 }
1032 /* Unify nodes in GRAPH that we have found to be part of a cycle.
1033 SI is the Strongly Connected Components information structure that tells us
1034 what components to unify.
1035 UPDATE_CHANGED should be set to true if the changed sbitmap and changed
1036 count should be updated to reflect the unification. */
1038 static void
1041 {
1046 /* We proceed as follows:
1048 For each component in the queue (components are delineated by
1049 when current_queue_element->node != next_queue_element->node):
1051 rep = representative node for component
1053 For each node (tounify) to be unified in the component,
1054 merge the solution for tounify into tmp bitmap
1056 clear solution for tounify
1058 merge edges from tounify into rep
1060 merge complex constraints from tounify into rep
1062 update changed count to note that tounify will never change
1063 again
1065 Merge tmp into solution for rep, marking rep changed if this
1066 changed rep's solution.
1068 Delete any self-edges we now have for rep. */
1070 {
1080 else
1086 {
1090 else
1091 {
1093 changed_count--;
1094 }
1095 }
1100 /* If we've either finished processing the entire queue, or
1101 finished processing all nodes for component n, update the solution for
1102 n. */
1105 {
1106 /* If the solution changes because of the merging, we need to mark
1107 the variable as changed. */
1109 {
1111 {
1113 changed_count++;
1114 }
1115 }
1119 {
1121 {
1125 }
1126 }
1127 }
1128 }
1130 }
1133 /* Information needed to compute the topological ordering of a graph. */
1135 struct topo_info
1136 {
1137 /* sbitmap of visited nodes. */
1138 sbitmap visited;
1139 /* Array that stores the topological order of the graph, *in
1140 reverse*. */
1142 };
1145 /* Initialize and return a topological info structure. */
1149 {
1156 }
1159 /* Free the topological sort info pointed to by TI. */
1161 static void
1163 {
1167 }
1169 /* Visit the graph in topological order, and store the order in the
1170 topo_info structure. */
1172 static void
1175 {
1176 bitmap temp;
1177 bitmap_iterator bi;
1185 {
1188 }
1190 }
1192 /* Return true if variable N + OFFSET is a legal field of N. */
1194 static bool
1196 {
1199 /* For things we've globbed to single variables, any offset into the
1200 variable acts like the entire variable, so that it becomes offset
1201 0. */
1205 {
1208 }
1210 }
1212 /* Process a constraint C that represents *x = &y. */
1214 static void
1217 {
1220 bitmap_iterator bi;
1222 /* For each member j of Delta (Sol(x)), add x to Sol(j) */
1224 {
1227 {
1228 /* *x != NULL && *x != ANYTHING*/
1229 varinfo_t v;
1231 bitmap sol;
1240 {
1243 {
1245 changed_count++;
1246 }
1247 }
1248 }
1252 }
1253 }
1255 /* Process a constraint C that represents x = *y, using DELTA as the
1256 starting solution. */
1258 static void
1260 bitmap delta)
1261 {
1266 bitmap_iterator bi;
1269 {
1274 }
1275 /* For each variable j in delta (Sol(y)), add
1276 an edge in the graph from j to x, and union Sol(j) into Sol(x). */
1278 {
1281 {
1282 varinfo_t v;
1291 /* Adding edges from the special vars is pointless.
1292 They don't have sets that can change. */
1297 }
1301 }
1303 done:
1304 /* If the LHS solution changed, mark the var as changed. */
1306 {
1309 {
1311 changed_count++;
1312 }
1313 }
1314 }
1316 /* Process a constraint C that represents *x = y. */
1318 static void
1320 {
1325 bitmap_iterator bi;
1328 {
1330 {
1335 varinfo_t v;
1343 {
1346 {
1348 changed_count++;
1349 }
1350 }
1351 }
1353 }
1355 /* For each member j of delta (Sol(x)), add an edge from y to j and
1356 union Sol(y) into Sol(j) */
1358 {
1361 {
1362 varinfo_t v;
1365 bitmap tmp;
1374 {
1379 {
1381 changed_count++;
1382 }
1383 }
1384 }
1387 }
1388 }
1390 /* Handle a non-simple (simple meaning requires no iteration), non-copy
1391 constraint (IE *x = &y, x = *y, and *x = y). */
1393 static void
1395 {
1397 {
1399 {
1400 /* *x = &y */
1402 }
1403 else
1404 {
1405 /* *x = y */
1407 }
1408 }
1410 {
1411 /* x = *y */
1414 }
1415 else
1416 {
1417 bitmap tmp;
1418 bitmap solution;
1431 {
1434 {
1436 changed_count++;
1437 }
1438 }
1439 }
1440 }
1442 /* Initialize and return a new SCC info structure. */
1446 {
1459 }
1461 /* Free an SCC info structure pointed to by SI */
1463 static void
1465 {
1472 }
1475 /* Find cycles in GRAPH that occur, using strongly connected components, and
1476 collapse the cycles into a single representative node. if UPDATE_CHANGED
1477 is true, then update the changed sbitmap to note those nodes whose
1478 solutions have changed as a result of collapsing. */
1480 static void
1482 {
1493 }
1495 /* Compute a topological ordering for GRAPH, and store the result in the
1496 topo_info structure TI. */
1498 static void
1501 {
1508 }
1510 /* Perform offline variable substitution.
1512 This is a linear time way of identifying variables that must have
1513 equivalent points-to sets, including those caused by static cycles,
1514 and single entry subgraphs, in the constraint graph.
1516 The technique is described in "Off-line variable substitution for
1517 scaling points-to analysis" by Atanas Rountev and Satish Chandra,
1518 in "ACM SIGPLAN Notices" volume 35, number 5, pages 47-56. */
1520 static void
1522 {
1526 /* Compute the topological ordering of the graph, then visit each
1527 node in topological order. */
1531 {
1536 bitmap tmp;
1538 bitmap_iterator bi;
1540 /* We can't eliminate things whose address is taken, or which is
1541 the target of a dereference. */
1545 /* See if all predecessors of I are ripe for elimination */
1547 {
1551 /* We can't eliminate the node if one of the predecessors is
1552 part of a different strongly connected component. */
1554 {
1557 }
1559 {
1562 }
1564 /* Theorem 4 in Rountev and Chandra: If i is a direct node,
1565 then Solution(i) is a subset of Solution (w), where w is a
1566 predecessor in the graph.
1567 Corollary: If all predecessors of i have the same
1568 points-to set, then i has that same points-to set as
1569 those predecessors. */
1574 {
1578 }
1580 }
1582 /* See if the root is different than the original node.
1583 If so, we've found an equivalence. */
1585 {
1586 /* Found an equivalence */
1594 }
1595 }
1599 }
1601 /* Solve the constraint graph GRAPH using our worklist solver.
1602 This is based on the PW* family of solvers from the "Efficient Field
1603 Sensitive Pointer Analysis for C" paper.
1604 It works by iterating over all the graph nodes, processing the complex
1605 constraints and propagating the copy constraints, until everything stops
1606 changed. This corresponds to steps 6-8 in the solving list given above. */
1608 static void
1610 {
1618 /* The already collapsed/unreachable nodes will never change, so we
1619 need to account for them in changed_count. */
1622 changed_count--;
1625 {
1633 {
1634 /* We already did cycle elimination once, when we did
1635 variable substitution, so we don't need it again for the
1636 first iteration. */
1641 }
1646 {
1650 /* If the node has changed, we need to process the
1651 complex constraints and outgoing edges again. */
1653 {
1655 constraint_t c;
1656 bitmap solution;
1657 bitmap_iterator bi;
1662 changed_count--;
1667 /* Process the complex constraints */
1669 {
1670 /* The only complex constraint that can change our
1671 solution to non-empty, given an empty solution,
1672 is a constraint where the lhs side is receiving
1673 some set from elsewhere. */
1676 }
1681 {
1682 /* Propagate solution to all successors. */
1685 {
1694 {
1697 {
1699 changed_count++;
1700 }
1701 }
1702 }
1703 }
1704 }
1705 }
1708 }
1711 }
1714 /* CONSTRAINT AND VARIABLE GENERATION FUNCTIONS */
1716 /* Map from trees to variable ids. */
1720 {
1721 tree t;
1725 /* Hash a tree id structure. */
1727 static hashval_t
1729 {
1732 }
1734 /* Return true if the tree in P1 and the tree in P2 are the same. */
1736 static int
1738 {
1742 }
1744 /* Insert ID as the variable id for tree T in the hashtable. */
1746 static void
1748 {
1751 tree_id_t new_pair;
1760 }
1762 /* Find the variable id for tree T in ID_FOR_TREE. If T does not
1763 exist in the hash table, return false, otherwise, return true and
1764 set *ID to the id we found. */
1766 static bool
1768 {
1769 tree_id_t pair;
1778 }
1780 /* Return a printable name for DECL */
1784 {
1797 {
1801 }
1803 {
1805 }
1807 {
1810 }
1812 }
1814 /* Find the variable id for tree T in the hashtable.
1815 If T doesn't exist in the hash table, create an entry for it. */
1817 static unsigned int
1819 {
1820 tree_id_t pair;
1829 }
1831 /* Get a constraint expression from an SSA_VAR_P node. */
1833 static struct constraint_expr
1835 {
1840 /* For parameters, get at the points-to set for the actual parm
1841 decl. */
1850 /* If we determine the result is "anything", and we know this is readonly,
1851 say it points to readonly memory instead. */
1853 {
1856 }
1860 }
1862 /* Process a completed constraint T, and add it to the constraint
1863 list. */
1865 static void
1867 {
1882 {
1885 }
1887 /* ANYTHING == ANYTHING is pointless. */
1891 /* If we have &ANYTHING = something, convert to SOMETHING = &ANYTHING) */
1894 {
1899 }
1900 /* This can happen in our IR with things like n->a = *p */
1902 {
1903 /* Split into tmp = *rhs, *lhs = tmp */
1910 /* If this is an aggregate of known size, we should have passed
1911 this off to do_structure_copy, and it should have broken it
1912 up. */
1918 }
1920 {
1921 varinfo_t vi;
1928 }
1929 else
1930 {
1934 }
1935 }
1937 /* Return true if T is a variable of a type that could contain
1938 pointers. */
1940 static bool
1942 {
1949 }
1951 /* Return the position, in bits, of FIELD_DECL from the beginning of its
1952 structure. */
1954 static unsigned HOST_WIDE_INT
1956 {
1964 }
1967 /* Return true if an access to [ACCESSPOS, ACCESSSIZE]
1968 overlaps with a field at [FIELDPOS, FIELDSIZE] */
1970 static bool
1975 {
1984 }
1986 /* Given a COMPONENT_REF T, return the constraint_expr for it. */
1988 static void
1990 {
1994 HOST_WIDE_INT bitpos;
1995 tree forzero;
1999 /* Some people like to do cute things like take the address of
2000 &0->a.b */
2006 {
2014 }
2018 /* String constants are readonly, so there is nothing to really do
2019 here. */
2029 /* This can also happen due to weird offsetof type macros. */
2034 {
2035 /* In languages like C, you can access one past the end of an
2036 array. You aren't allowed to dereference it, so we can
2037 ignore this constraint. When we handle pointer subtraction,
2038 we may have to do something cute here. */
2042 {
2043 /* It's also not true that the constraint will actually start at the
2044 right offset, it may start in some padding. We only care about
2045 setting the constraint to the first actual field it touches, so
2046 walk to find it. */
2047 varinfo_t curr;
2049 {
2052 {
2055 }
2056 }
2057 /* assert that we found *some* field there. The user couldn't be
2058 accessing *only* padding. */
2059 /* Still the user could access one past the end of an array
2060 embedded in a struct resulting in accessing *only* padding. */
2062 }
2064 {
2068 }
2069 else
2074 }
2075 }
2078 /* Dereference the constraint expression CONS, and return the result.
2079 DEREF (ADDRESSOF) = SCALAR
2080 DEREF (SCALAR) = DEREF
2081 DEREF (DEREF) = (temp = DEREF1; result = DEREF(temp))
2082 This is needed so that we can handle dereferencing DEREF constraints. */
2084 static void
2086 {
2091 {
2097 {
2102 }
2103 else
2105 }
2106 }
2108 /* Given a tree T, return the constraint expression for it. */
2110 static void
2112 {
2115 /* x = integer is all glommed to a single variable, which doesn't
2116 point to anything by itself. That is, of course, unless it is an
2117 integer constant being treated as a pointer, in which case, we
2118 will return that this is really the addressof anything. This
2119 happens below, since it will fall into the default case. The only
2120 case we know something about an integer treated like a pointer is
2121 when it is the NULL pointer, and then we just say it points to
2122 NULL. */
2125 {
2131 }
2134 {
2140 }
2143 {
2145 {
2147 {
2149 {
2156 /* Make sure we capture constraints to all elements
2157 of an array. */
2161 {
2163 varinfo_t origvar;
2175 {
2178 }
2179 }
2183 {
2185 varinfo_t origvar;
2194 {
2197 }
2198 }
2201 {
2204 else
2206 }
2208 }
2211 /* XXX: In interprocedural mode, if we didn't have the
2212 body, we would need to do *each pointer argument =
2213 &ANYTHING added. */
2215 {
2216 varinfo_t vi;
2220 {
2227 }
2239 }
2240 else
2241 {
2247 }
2250 {
2256 }
2257 }
2258 }
2260 {
2262 {
2264 {
2268 }
2275 {
2281 }
2282 }
2283 }
2285 {
2287 {
2291 {
2294 /* Cast from non-pointer to pointers are bad news for us.
2295 Anything else, we see through */
2298 {
2301 }
2303 /* FALLTHRU */
2304 }
2306 {
2312 }
2313 }
2314 }
2316 {
2318 {
2320 {
2323 }
2326 {
2331 }
2334 {
2340 }
2341 }
2342 }
2344 {
2349 }
2351 {
2357 }
2358 }
2359 }
2362 /* Handle the structure copy case where we have a simple structure copy
2363 between LHS and RHS that is of SIZE (in bits)
2365 For each field of the lhs variable (lhsfield)
2366 For each field of the rhs variable at lhsfield.offset (rhsfield)
2367 add the constraint lhsfield = rhsfield
2369 If we fail due to some kind of type unsafety or other thing we
2370 can't handle, return false. We expect the caller to collapse the
2371 variable in that case. */
2373 static bool
2377 {
2383 {
2384 varinfo_t q;
2397 }
2399 }
2402 /* Handle the structure copy case where we have a structure copy between a
2403 aggregate on the LHS and a dereference of a pointer on the RHS
2404 that is of SIZE (in bits)
2406 For each field of the lhs variable (lhsfield)
2407 rhs.offset = lhsfield->offset
2408 add the constraint lhsfield = rhs
2409 */
2411 static void
2415 {
2422 {
2423 varinfo_t q;
2431 else
2438 }
2439 }
2441 /* Handle the structure copy case where we have a structure copy
2442 between a aggregate on the RHS and a dereference of a pointer on
2443 the LHS that is of SIZE (in bits)
2445 For each field of the rhs variable (rhsfield)
2446 lhs.offset = rhsfield->offset
2447 add the constraint lhs = rhsfield
2448 */
2450 static void
2454 {
2461 {
2462 varinfo_t q;
2470 else
2477 }
2478 }
2480 /* Sometimes, frontends like to give us bad type information. This
2481 function will collapse all the fields from VAR to the end of VAR,
2482 into VAR, so that we treat those fields as a single variable.
2483 We return the variable they were collapsed into. */
2485 static unsigned int
2487 {
2489 varinfo_t field;
2492 {
2499 }
2505 }
2507 /* Handle aggregate copies by expanding into copies of the respective
2508 fields of the structures. */
2510 static void
2512 {
2515 varinfo_t p;
2529 /* If we have special var = x, swap it around. */
2531 {
2535 }
2537 /* This is fairly conservative for the RHS == ADDRESSOF case, in that it's
2538 possible it's something we could handle. However, most cases falling
2539 into this are dealing with transparent unions, which are slightly
2540 weird. */
2542 {
2545 }
2547 /* If the RHS is a special var, or an addressof, set all the LHS fields to
2548 that special var. */
2550 {
2552 {
2558 else
2561 }
2562 }
2563 else
2564 {
2567 tree rhstypesize;
2568 tree lhstypesize;
2573 /* If we have a variably sized types on the rhs or lhs, and a deref
2574 constraint, add the constraint, lhsconstraint = &ANYTHING.
2575 This is conservatively correct because either the lhs is an unknown
2576 sized var (if the constraint is SCALAR), or the lhs is a DEREF
2577 constraint, and every variable it can point to must be unknown sized
2578 anyway, so we don't need to worry about fields at all. */
2581 {
2587 }
2589 /* The size only really matters insofar as we don't set more or less of
2590 the variable. If we hit an unknown size var, the size should be the
2591 whole darn thing. */
2594 else
2599 else
2604 {
2606 {
2614 }
2615 }
2620 else
2621 {
2623 tree tmpvar;
2629 }
2630 }
2631 }
2633 /* Update related alias information kept in AI. This is used when
2634 building name tags, alias sets and deciding grouping heuristics.
2635 STMT is the statement to process. This function also updates
2636 ADDRESSABLE_VARS. */
2638 static void
2640 {
2641 bitmap addr_taken;
2642 use_operand_p use_p;
2643 ssa_op_iter iter;
2648 {
2652 }
2654 /* Mark all the variables whose address are taken by the statement. */
2657 {
2660 /* If STMT is an escape point, all the addresses taken by it are
2661 call-clobbered. */
2663 {
2664 bitmap_iterator bi;
2668 {
2672 }
2673 }
2674 }
2676 /* Process each operand use. If an operand may be aliased, keep
2677 track of how many times it's being used. For pointers, determine
2678 whether they are dereferenced by the statement, or whether their
2679 value escapes, etc. */
2681 {
2683 var_ann_t v_ann;
2690 /* If STMT is a PHI node, OP may be an ADDR_EXPR. If so, add it
2691 to the set of addressable variables. */
2693 {
2699 /* PHI nodes don't have annotations for pinning the set
2700 of addresses taken, so we collect them here.
2702 FIXME, should we allow PHI nodes to have annotations
2703 so that they can be treated like regular statements?
2704 Currently, they are treated as second-class
2705 statements. */
2709 }
2711 /* Ignore constants. */
2718 /* The base variable of an SSA name must be a GIMPLE register, and thus
2719 it cannot be aliased. */
2722 /* We are only interested in pointers. */
2728 /* Add OP to AI->PROCESSED_PTRS, if it's not there already. */
2730 {
2733 }
2735 /* If STMT is a PHI node, then it will not have pointer
2736 dereferences and it will not be an escape point. */
2740 /* Determine whether OP is a dereferenced pointer, and if STMT
2741 is an escape point, whether OP escapes. */
2744 /* Handle a corner case involving address expressions of the
2745 form '&PTR->FLD'. The problem with these expressions is that
2746 they do not represent a dereference of PTR. However, if some
2747 other transformation propagates them into an INDIRECT_REF
2748 expression, we end up with '*(&PTR->FLD)' which is folded
2749 into 'PTR->FLD'.
2751 So, if the original code had no other dereferences of PTR,
2752 the aliaser will not create memory tags for it, and when
2753 &PTR->FLD gets propagated to INDIRECT_REF expressions, the
2754 memory operations will receive no VDEF/VUSE operands.
2756 One solution would be to have count_uses_and_derefs consider
2757 &PTR->FLD a dereference of PTR. But that is wrong, since it
2758 is not really a dereference but an offset calculation.
2760 What we do here is to recognize these special ADDR_EXPR
2761 nodes. Since these expressions are never GIMPLE values (they
2762 are not GIMPLE invariants), they can only appear on the RHS
2763 of an assignment and their base address is always an
2764 INDIRECT_REF expression. */
2769 {
2770 /* If the RHS if of the form &PTR->FLD and PTR == OP, then
2771 this represents a potential dereference of PTR. */
2777 }
2780 {
2781 /* Mark OP as dereferenced. In a subsequent pass,
2782 dereferenced pointers that point to a set of
2783 variables will be assigned a name tag to alias
2784 all the variables OP points to. */
2787 /* If this is a store operation, mark OP as being
2788 dereferenced to store, otherwise mark it as being
2789 dereferenced to load. */
2792 else
2794 }
2797 {
2798 /* If STMT is an escape point and STMT contains at
2799 least one direct use of OP, then the value of OP
2800 escapes and so the pointed-to variables need to
2801 be marked call-clobbered. */
2805 /* If the statement makes a function call, assume
2806 that pointer OP will be dereferenced in a store
2807 operation inside the called function. */
2810 {
2813 }
2814 }
2815 }
2820 /* Mark stored variables in STMT as being written to and update the
2821 reference counter for potentially aliased symbols in STMT. */
2823 {
2825 bitmap_iterator bi;
2828 }
2829 }
2832 /* Handle pointer arithmetic EXPR when creating aliasing constraints.
2833 Expressions of the type PTR + CST can be handled in two ways:
2835 1- If the constraint for PTR is ADDRESSOF for a non-structure
2836 variable, then we can use it directly because adding or
2837 subtracting a constant may not alter the original ADDRESSOF
2838 constraint (i.e., pointer arithmetic may not legally go outside
2839 an object's boundaries).
2841 2- If the constraint for PTR is ADDRESSOF for a structure variable,
2842 then if CST is a compile-time constant that can be used as an
2843 offset, we can determine which sub-variable will be pointed-to
2844 by the expression.
2846 Return true if the expression is handled. For any other kind of
2847 expression, return false so that each operand can be added as a
2848 separate constraint by the caller. */
2850 static bool
2852 {
2871 {
2873 }
2878 {
2880 {
2883 /* An access one after the end of an array is valid,
2884 so simply punt on accesses we cannot resolve. */
2890 }
2891 else
2894 }
2899 }
2902 /* Walk statement T setting up aliasing constraints according to the
2903 references found in T. This function is the main part of the
2904 constraint builder. AI points to auxiliary alias information used
2905 when building alias sets and computing alias grouping heuristics. */
2907 static void
2909 {
2918 /* Now build constraints expressions. */
2920 {
2923 /* Only care about pointers and structures containing
2924 pointers. */
2926 {
2930 /* For a phi node, assign all the arguments to
2931 the result. */
2934 {
2935 tree rhstype;
2943 {
2946 {
2950 }
2951 }
2952 }
2953 }
2954 }
2955 /* In IPA mode, we need to generate constraints to pass call
2956 arguments through their calls. There are two case, either a
2957 modify_expr when we are returning a value, or just a plain
2958 call_expr when we are not. */
2967 {
2968 tree lhsop;
2969 tree rhsop;
2971 tree arglist;
2972 varinfo_t fi;
2974 tree decl;
2976 {
2979 }
2980 else
2981 {
2984 }
2987 /* If we can directly resolve the function being called, do so.
2988 Otherwise, it must be some sort of indirect expression that
2989 we should still be able to handle. */
2991 {
2993 }
2994 else
2995 {
2998 }
3000 /* Assign all the passed arguments to the appropriate incoming
3001 parameters of the function. */
3006 {
3013 {
3017 }
3018 else
3019 {
3023 }
3025 {
3029 }
3030 i++;
3031 }
3032 /* If we are returning a value, assign it to the result. */
3034 {
3041 {
3045 }
3046 else
3047 {
3051 }
3054 }
3055 }
3056 /* Otherwise, just a regular assignment statement. */
3058 {
3067 {
3069 }
3070 else
3071 {
3072 /* Only care about operations with pointers, structures
3073 containing pointers, dereferences, and call expressions. */
3076 {
3079 {
3080 /* RHS that consist of unary operations,
3081 exceptional types, or bare decls/constants, get
3082 handled directly by get_constraint_for. */
3089 {
3094 {
3100 }
3102 }
3106 {
3107 /* For pointer arithmetic of the form
3108 PTR + CST, we can simply use PTR's
3109 constraint because pointer arithmetic is
3110 not allowed to go out of bounds. */
3113 }
3114 /* FALLTHRU */
3116 /* Otherwise, walk each operand. Notice that we
3117 can't use the operand interface because we need
3118 to process expressions other than simple operands
3119 (e.g. INDIRECT_REF, ADDR_EXPR, CALL_EXPR). */
3122 {
3129 {
3132 {
3136 }
3137 }
3138 }
3139 }
3140 }
3141 }
3142 }
3144 /* After promoting variables and computing aliasing we will
3145 need to re-scan most statements. FIXME: Try to minimize the
3146 number of statements re-scanned. It's not really necessary to
3147 re-scan *all* statements. */
3151 }
3154 /* Find the first varinfo in the same variable as START that overlaps with
3155 OFFSET.
3156 Effectively, walk the chain of fields for the variable START to find the
3157 first field that overlaps with OFFSET.
3158 Return NULL if we can't find one. */
3160 static varinfo_t
3162 {
3165 {
3166 /* We may not find a variable in the field list with the actual
3167 offset when when we have glommed a structure to a variable.
3168 In that case, however, offset should still be within the size
3169 of the variable. */
3173 }
3175 }
3178 /* Insert the varinfo FIELD into the field list for BASE, at the front
3179 of the list. */
3181 static void
3183 {
3189 }
3191 /* Insert the varinfo FIELD into the field list for BASE, ordered by
3192 offset. */
3194 static void
3196 {
3201 {
3204 }
3205 else
3206 {
3208 {
3213 }
3216 }
3217 }
3219 /* qsort comparison function for two fieldoff's PA and PB */
3221 static int
3223 {
3234 }
3236 /* Sort a fieldstack according to the field offset and sizes. */
3237 void
3239 {
3243 fieldoff_compare);
3244 }
3246 /* Given a TYPE, and a vector of field offsets FIELDSTACK, push all the fields
3247 of TYPE onto fieldstack, recording their offsets along the way.
3248 OFFSET is used to keep track of the offset in this entire structure, rather
3249 than just the immediately containing structure. Returns the number
3250 of fields pushed.
3251 HAS_UNION is set to true if we find a union type as a field of
3252 TYPE. */
3254 int
3257 {
3258 tree field;
3262 {
3277 }
3280 {
3283 HOST_WIDE_INT nr;
3289 || ! elsz
3299 {
3313 /* Empty structures may have actual size, like in C++. So
3314 see if we didn't push any subfields and the size is
3315 nonzero, push the field onto the stack */
3319 {
3327 count++;
3328 }
3329 else
3331 }
3334 }
3338 {
3354 /* Empty structures may have actual size, like in C++. So
3355 see if we didn't push any subfields and the size is
3356 nonzero, push the field onto the stack */
3360 {
3368 count++;
3369 }
3370 else
3372 }
3375 }
3377 /* Create a constraint from ANYTHING variable to VI. */
3378 static void
3380 {
3391 }
3393 /* Count the number of arguments DECL has, and set IS_VARARGS to true
3394 if it is a varargs function. */
3396 static unsigned int
3398 {
3400 tree t;
3403 t;
3405 {
3408 i++;
3409 }
3414 }
3416 /* Creation function node for DECL, using NAME, and return the index
3417 of the variable we've created for the function. */
3419 static unsigned int
3421 {
3423 varinfo_t vi;
3424 tree arg;
3428 /* Create the variable info. */
3441 /* If it's varargs, we don't know how many arguments it has, so we
3442 can't do much.
3443 */
3445 {
3450 }
3455 /* Set up variables for each argument. */
3457 {
3458 varinfo_t argvi;
3482 {
3485 }
3486 }
3488 /* Create a variable for the return var. */
3491 {
3492 varinfo_t resultvi;
3519 }
3521 }
3524 /* Return true if FIELDSTACK contains fields that overlap.
3525 FIELDSTACK is assumed to be sorted by offset. */
3527 static bool
3529 {
3535 {
3539 }
3541 }
3543 /* Create a varinfo structure for NAME and DECL, and add it to VARMAP.
3544 This will also create any varinfo structures necessary for fields
3545 of DECL. */
3547 static unsigned int
3549 {
3551 varinfo_t vi;
3565 {
3568 {
3571 }
3572 }
3575 /* If the variable doesn't have subvars, we may end up needing to
3576 sort the field list and create fake variables for all the
3577 fields. */
3586 {
3590 }
3591 else
3592 {
3595 }
3604 && !notokay
3608 {
3614 {
3618 {
3621 }
3622 }
3624 /* We can't sort them if we have a field with a variable sized type,
3625 which will make notokay = true. In that case, we are going to return
3626 without creating varinfos for the fields anyway, so sorting them is a
3627 waste to boot. */
3629 {
3631 /* Due to some C++ FE issues, like PR 22488, we might end up
3632 what appear to be overlapping fields even though they,
3633 in reality, do not overlap. Until the C++ FE is fixed,
3634 we will simply disable field-sensitivity for these cases. */
3636 }
3643 {
3649 }
3655 i--)
3656 {
3657 varinfo_t newvi;
3663 {
3667 else
3672 }
3683 }
3685 }
3687 }
3689 /* Print out the points-to solution for VAR to FILE. */
3691 void
3693 {
3696 bitmap_iterator bi;
3699 {
3702 }
3703 else
3704 {
3707 {
3709 }
3711 }
3712 }
3714 /* Print the points-to solution for VAR to stdout. */
3716 void
3718 {
3720 }
3722 /* Create varinfo structures for all of the variables in the
3723 function for intraprocedural mode. */
3725 static void
3727 {
3728 tree t;
3731 /* For each incoming pointer argument arg, ARG = ANYTHING or a
3732 dummy variable if flag_argument_noalias > 2. */
3734 {
3735 varinfo_t p;
3743 /* With flag_argument_noalias greater than two means that the incoming
3744 argument cannot alias anything except for itself so create a HEAP
3745 variable. */
3748 {
3749 varinfo_t vi;
3758 {
3766 }
3775 {
3779 }
3780 }
3781 else
3782 {
3785 }
3786 }
3787 }
3789 /* Set bits in INTO corresponding to the variable uids in solution set
3790 FROM, which came from variable PTR.
3791 For variables that are actually dereferenced, we also use type
3792 based alias analysis to prune the points-to sets. */
3794 static void
3796 {
3798 bitmap_iterator bi;
3799 subvar_t sv;
3803 {
3807 /* The only artificial variables that are allowed in a may-alias
3808 set are heap variables. */
3813 {
3814 /* Variables containing unions may need to be converted to
3815 their SFT's, because SFT's can have unions and we cannot. */
3818 }
3821 {
3824 {
3825 /* If VI->DECL is an aggregate for which we created
3826 SFTs, add the SFT corresponding to VI->OFFSET. */
3829 {
3834 }
3835 }
3836 else
3837 {
3838 /* Otherwise, just add VI->DECL to the alias set.
3839 Don't type prune artificial vars. */
3842 else
3843 {
3848 }
3849 }
3850 }
3851 }
3852 }
3857 /* The list of SMT's that are in use by our pointer variables. This
3858 is the set of SMT's for all pointers that can point to anything. */
3861 /* Due to the ordering of points-to set calculation and SMT
3862 calculation being a bit co-dependent, we can't just calculate SMT
3863 used info whenever we want, we have to calculate it around the time
3864 that find_what_p_points_to is called. */
3866 /* Mark which SMT's are in use by points-to anything variables. */
3868 void
3870 {
3872 varinfo_t vi;
3876 {
3878 tree smt;
3879 var_ann_t va;
3882 /* For parm decls, the pointer info may be under the default
3883 def. */
3890 /* Skip the special variables and those without their own
3891 solution set. */
3908 }
3909 }
3911 /* Merge the necessary SMT's into the solution set for VI, which is
3912 P's varinfo. This involves merging all SMT's that are a subset of
3913 the SMT necessary for P. */
3915 static void
3917 {
3919 bitmap_iterator bi;
3920 tree smt;
3929 {
3932 /* Need to set the SMT subsets first before this
3933 will work properly. */
3936 {
3941 smtset))
3943 }
3947 {
3949 tree al;
3953 }
3954 }
3955 }
3957 /* Given a pointer variable P, fill in its points-to set, or return
3958 false if we can't.
3959 Rather than return false for variables that point-to anything, we
3960 instead find the corresponding SMT, and merge in it's aliases. In
3961 addition to these aliases, we also set the bits for the SMT's
3962 themselves and their subsets, as SMT's are still in use by
3963 non-SSA_NAME's, and pruning may eliminate every one of their
3964 aliases. In such a case, if we did not include the right set of
3965 SMT's in the points-to set of the variable, we'd end up with
3966 statements that do not conflict but should. */
3968 bool
3970 {
3977 /* For parameters, get at the points-to set for the actual parm
3978 decl. */
3985 {
3991 /* See if this is a field or a structure. */
3993 {
3994 /* Nothing currently asks about structure fields directly,
3995 but when they do, we need code here to hand back the
3996 points-to set. */
4000 }
4001 else
4002 {
4005 bitmap_iterator bi;
4011 /* This variable may have been collapsed, let's get the real
4012 variable. */
4015 /* Translate artificial variables into SSA_NAME_PTR_INFO
4016 attributes. */
4018 {
4022 {
4023 /* FIXME. READONLY should be handled better so that
4024 flow insensitive aliasing can disregard writable
4025 aliases. */
4036 }
4037 }
4039 /* Share the final set of variables between the SSA_NAME
4040 pointer infos for collapsed nodes that are collapsed to
4041 non-special variables. This is because special vars have
4042 no real types associated with them, so while we know the
4043 pointers are equivalent to them, we need to generate the
4044 solution separately since it will include SMT's from the
4045 original non-collapsed variable. */
4047 {
4049 }
4050 else
4051 {
4054 /* Instead of using pt_anything, we instead merge in the SMT
4055 aliases for the underlying SMT. */
4057 {
4060 }
4064 }
4070 }
4071 }
4074 }
4078 /* Dump points-to information to OUTFILE. */
4080 void
4082 {
4088 {
4098 }
4102 }
4105 /* Debug points-to information to stderr. */
4107 void
4109 {
4111 }
4114 /* Initialize the always-existing constraint variables for NULL
4115 ANYTHING, READONLY, and INTEGER */
4117 static void
4119 {
4122 /* Create the NULL variable, used to represent that a variable points
4123 to NULL. */
4135 /* Create the ANYTHING variable, used to represent that a variable
4136 points to some unknown piece of memory. */
4148 /* Anything points to anything. This makes deref constraints just
4149 work in the presence of linked list and other p = *p type loops,
4150 by saying that *ANYTHING = ANYTHING. */
4160 /* This specifically does not use process_constraint because
4161 process_constraint ignores all anything = anything constraints, since all
4162 but this one are redundant. */
4165 /* Create the READONLY variable, used to represent that a variable
4166 points to readonly memory. */
4179 /* readonly memory points to anything, in order to make deref
4180 easier. In reality, it points to anything the particular
4181 readonly variable can point to, but we don't track this
4182 separately. */
4192 /* Create the INTEGER variable, used to represent that a variable points
4193 to an INTEGER. */
4206 /* INTEGER = ANYTHING, because we don't know where a dereference of
4207 a random integer will point to. */
4215 }
4217 /* Initialize things necessary to perform PTA */
4219 static void
4221 {
4235 }
4237 /* Create points-to sets for the current function. See the comments
4238 at the start of the file for an algorithmic overview. */
4240 void
4242 {
4243 basic_block bb;
4251 /* Now walk all statements and derive aliases. */
4253 {
4254 block_stmt_iterator bsi;
4255 tree phi;
4258 {
4260 {
4262 /* Update various related attributes like escaped
4263 addresses, pointer dereferences for loads and stores.
4264 This is used when creating name tags and alias
4265 sets. */
4267 }
4268 }
4271 {
4276 /* Update various related attributes like escaped
4277 addresses, pointer dereferences for loads and stores.
4278 This is used when creating name tags and alias
4279 sets. */
4281 }
4282 }
4287 {
4290 }
4311 }
4314 /* Delete created points-to sets. */
4316 void
4318 {
4319 varinfo_t v;
4338 }
4340 /* Return true if we should execute IPA PTA. */
4341 static bool
4343 {
4345 && flag_ipa_pta
4346 /* Don't bother doing anything if the program has errors. */
4348 }
4350 /* Execute the driver for IPA PTA. */
4351 static unsigned int
4353 {
4360 {
4362 {
4368 {
4372 }
4373 }
4374 }
4376 {
4378 {
4380 basic_block bb;
4390 {
4391 block_stmt_iterator bsi;
4392 tree phi;
4395 {
4397 {
4399 }
4400 }
4403 {
4406 }
4407 }
4410 }
4411 else
4412 {
4413 /* Make point to anything. */
4414 }
4415 }
4420 {
4423 }
4445 }
4448 {
4462 };
4464 /* Initialize the heapvar for statement mapping. */
4465 void
4467 {
4469 NULL);
4470 }
4472 void
4474 {
4476 }